Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252831 6.8 警告 Opera Software ASA - Opera における任意の Web スクリプトを実行される脆弱性 CWE-287
不適切な認証 		CVE-2009-2059 2010-09-27 16:10 2009-06-15 Show GitHub Exploit DB Packet Storm
252832 9.3 危険 アドビシステムズ
Opera Software ASA		 - Opera における Adobe Acrobat の JavaScript の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-1599 2010-09-27 16:09 2009-05-11 Show GitHub Exploit DB Packet Storm
252833 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7245 2010-09-27 16:09 2009-09-18 Show GitHub Exploit DB Packet Storm
252834 9.3 危険 Opera Software ASA - Windows 上で稼働する Opera におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5178 2010-09-27 16:09 2008-11-20 Show GitHub Exploit DB Packet Storm
252835 10 危険 Opera Software ASA - Opera における脆弱性 CWE-noinfo
情報不足 		CVE-2009-0916 2010-09-27 16:08 2009-03-3 Show GitHub Exploit DB Packet Storm
252836 4.3 警告 Opera Software ASA - Windows 上で稼働する Opera におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5428 2010-09-27 16:07 2008-12-11 Show GitHub Exploit DB Packet Storm
252837 4.3 警告 Opera Software ASA - Opera の Opera.dll におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4725 2010-09-27 16:07 2008-10-23 Show GitHub Exploit DB Packet Storm
252838 5.8 警告 Opera Software ASA - Opera における新規フィードの購読を作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4698 2010-09-27 16:05 2008-10-23 Show GitHub Exploit DB Packet Storm
252839 10 危険 Opera Software ASA - Windows 上で稼働する Opera における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-4293 2010-09-27 16:05 2008-09-27 Show GitHub Exploit DB Packet Storm
252840 10 危険 Opera Software ASA - Opera における CRL の更新時の処理に関する脆弱性 CWE-255
CWE-noinfo
CVE-2008-4292 2010-09-27 16:04 2008-09-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266681 6.1 MEDIUM
Network 		smackcoders import_all_pages\
_post_types\
_products\
_orders\
_and_users_as_xml_\&_csv 		The wp-ultimate-csv-importer plugin before 3.8.1 for WordPress has XSS. CWE-79
Cross-site Scripting 		CVE-2015-9306 2024-11-21 11:40 2019-08-13 Show GitHub Exploit DB Packet Storm
266682 6.1 MEDIUM
Network 		flippercode wp_google_map The wp-google-map-plugin plugin before 2.3.7 for WordPress has XSS related to the add_query_arg() and remove_query_arg() functions. CWE-79
Cross-site Scripting 		CVE-2015-9305 2024-11-21 11:40 2019-08-13 Show GitHub Exploit DB Packet Storm
266683 8.8 HIGH
Network 		6kbbs 6kbbs 6kbbs 7.1 and 8.0 allows CSRF via portalchannel_ajax.php (id or code parameter) or admin.php (fileids parameter). CWE-352
 Origin Validation Error 		CVE-2015-9292 2024-11-21 11:40 2019-08-9 Show GitHub Exploit DB Packet Storm
266684 7.5 HIGH
Network 		cpanel cpanel cPanel before 11.52.0.13 does not prevent arbitrary file-read operations via get_information_for_applications (CPANEL-1221). CWE-284
Improper Access Control 		CVE-2015-9291 2024-11-21 11:40 2019-08-2 Show GitHub Exploit DB Packet Storm
266685 9.8 CRITICAL
Network 		freetype freetype In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1_Get_Private_Dict where there is no check that the new values of cur and limit are sensible before going to Again. CWE-125
Out-of-bounds Read 		CVE-2015-9290 2024-11-21 11:40 2019-07-30 Show GitHub Exploit DB Packet Storm
266686 6.5 MEDIUM
Network 		unity web_player The Unity Web Player plugin before 4.6.6f2 and 5.x before 5.0.3f2 allows attackers to read messages or access online services via a victim's credentials CWE-200
Information Exposure 		CVE-2015-9288 2024-11-21 11:40 2019-07-30 Show GitHub Exploit DB Packet Storm
266687 5.5 MEDIUM
Local 		linux linux_kernel In the Linux kernel before 4.1.4, a buffer overflow occurs when checking userspace params in drivers/media/dvb-frontends/cx24116.c. The maximum size for a DiSEqC command is 6, according to the usersp… CWE-125
Out-of-bounds Read 		CVE-2015-9289 2024-11-21 11:40 2019-07-28 Show GitHub Exploit DB Packet Storm
266688 9.8 CRITICAL
Network 		cam the_university_of_cambridge_web_authentication_system_apache_authentication_agent Directory Traversal was discovered in University of Cambridge mod_ucam_webauth before 2.0.2. The key identification field ("kid") of the IdP's HTTP response message ("WLS-Response") can be manipulate… CWE-22
Path Traversal 		CVE-2015-9287 2024-11-21 11:40 2019-05-14 Show GitHub Exploit DB Packet Storm
266689 6.1 MEDIUM
Network 		nodebb nodebb Controllers.outgoing in controllers/index.js in NodeBB before 0.7.3 has outgoing XSS. CWE-79
Cross-site Scripting 		CVE-2015-9286 2024-11-21 11:40 2019-04-30 Show GitHub Exploit DB Packet Storm
266690 6.1 MEDIUM
Network 		esotalk esotalk esoTalk 1.0.0g4 has XSS via the PATH_INFO to the conversations/ URI. CWE-79
Cross-site Scripting 		CVE-2015-9285 2024-11-21 11:40 2019-04-29 Show GitHub Exploit DB Packet Storm